Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/c6553e-9eac-4eaf-85fb-eb6591b877ae/1/DEkHSpLn2RemSrZh27eZitgygds.roa
File: DEkHSpLn2RemSrZh27eZitgygds.roa (raw, json)
Hash identifier: fgljXEfj/UX5PSxRBE30TaAsVu7FHQh5AX65HIo37Bs=
Subject key identifier: 0C:49:07:4A:92:E7:D9:17:A6:4A:B6:61:DB:B7:99:8A:D8:32:81:DB
Certificate issuer: /CN=8b124b124942a5d7ead6bb7d37a64e58c7e6da41
Certificate serial: 018B1E810CD7D3536DB493550290F5014FC1
Authority key identifier: 8B:12:4B:12:49:42:A5:D7:EA:D6:BB:7D:37:A6:4E:58:C7:E6:DA:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ixJLEklCpdfq1rt9N6ZOWMfm2kE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/c6553e-9eac-4eaf-85fb-eb6591b877ae/1/DEkHSpLn2RemSrZh27eZitgygds.roa
Signing time: Wed 11 Oct 2023 11:30:55 +0000
ROA not before: Wed 11 Oct 2023 11:30:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31477
IP address blocks: 91.206.136.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Oct 2023 10:45:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1e:81:0c:d7:d3:53:6d:b4:93:55:02:90:f5:01:4f:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b124b124942a5d7ead6bb7d37a64e58c7e6da41
Validity
Not Before: Oct 11 11:30:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c49074a92e7d917a64ab661dbb7998ad83281db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:24:55:c7:70:28:f6:8a:0c:e3:26:93:db:45:
52:55:5c:68:2a:8f:4c:e1:e0:48:38:cd:02:d6:08:
c9:f5:81:29:12:d1:12:fa:12:3d:ee:45:67:77:31:
14:31:32:12:0c:f5:21:35:02:2b:a4:8a:c7:68:0c:
55:c2:71:f3:72:08:1d:cd:0d:94:00:c6:e5:31:87:
a6:9a:ed:d1:11:2f:09:01:61:16:be:44:0f:83:6a:
cd:b2:ec:35:e1:01:de:a8:c6:e6:53:b4:a7:6a:77:
2e:d5:b7:af:7c:11:6f:08:75:ac:d2:93:bf:0f:36:
0c:7d:bb:dd:84:d1:7f:7e:6f:25:49:a8:37:18:6c:
7b:74:fc:39:37:d3:74:5c:98:df:47:21:2b:54:16:
fd:79:e7:71:fb:35:40:ae:13:05:d2:0d:db:7f:56:
de:3a:0f:2f:c3:c1:29:2f:d4:93:9c:90:f0:50:a3:
4f:a4:7a:2c:10:e9:4c:1f:61:8b:fe:a2:f6:0f:d1:
09:f4:8c:30:e7:8d:ad:c6:98:f7:7c:45:1d:e3:05:
e6:ff:dc:d2:96:f4:f2:68:4a:92:d7:7c:59:2a:81:
2e:25:3e:a9:df:f0:cc:d1:49:4d:f7:c3:c4:f2:dd:
53:29:19:68:26:4c:37:ba:b2:25:63:86:b3:af:7a:
88:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:49:07:4A:92:E7:D9:17:A6:4A:B6:61:DB:B7:99:8A:D8:32:81:DB
X509v3 Authority Key Identifier:
keyid:8B:12:4B:12:49:42:A5:D7:EA:D6:BB:7D:37:A6:4E:58:C7:E6:DA:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ixJLEklCpdfq1rt9N6ZOWMfm2kE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/c6553e-9eac-4eaf-85fb-eb6591b877ae/1/DEkHSpLn2RemSrZh27eZitgygds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/c6553e-9eac-4eaf-85fb-eb6591b877ae/1/ixJLEklCpdfq1rt9N6ZOWMfm2kE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.136.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:82:0c:29:f1:3a:02:4d:4e:93:4e:e9:dd:78:f7:f0:02:69:
d2:52:7f:61:dd:98:b5:ac:d9:9b:e6:9c:c5:f4:4b:2e:0d:31:
6a:d2:d0:45:7f:47:d4:81:c2:ab:89:2e:92:0d:0d:57:26:45:
bc:ae:57:b9:65:d5:3c:46:f4:91:82:ce:cf:8d:44:0a:98:7e:
2f:d7:c5:60:2a:b6:0b:81:ef:85:f1:8f:3c:be:8c:62:d2:75:
7d:c5:f7:68:45:4c:c6:2a:04:61:8e:f7:81:5f:36:97:07:0c:
f4:87:ed:43:4d:4b:c9:0b:00:2c:2f:c2:87:66:fc:0a:be:bd:
75:0e:5b:b6:79:f6:b3:22:b3:12:b7:97:40:6b:cf:a2:07:6f:
52:b3:33:1a:db:6a:58:f7:28:13:32:b3:6b:af:36:2d:c2:8d:
2b:e1:ce:6c:6b:67:68:a6:0a:2a:e0:62:b1:de:2e:69:f7:8f:
a8:ef:7f:5c:3d:24:97:6f:27:91:a5:0c:b3:9c:b0:dd:71:23:
93:bd:39:c5:9a:9b:b8:1d:2f:fb:f9:19:a0:d9:c8:e5:11:a4:
9e:e6:51:5f:ed:c4:14:0c:c8:1c:c8:07:e7:87:7f:54:8b:ca:
ae:09:ac:d5:4e:00:e7:75:96:e8:58:12:b9:16:17:0c:aa:54:
42:9f:d0:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:31 2024 by rpki-client on console-fra.rpki-client.org